Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-41559

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.01139EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/08/25 12:0 a.m.4 views

Hitron CGNF-TWN 安全漏洞

Hitron CGNF-TWN is a wireless router from Hitron Corporation of Taiwan, China. A security vulnerability exists in Hitron CGNF-TWN version 3.1.1.43-TWN-pre3, which stems from insufficient telnet service input validation and could lead to remote code execution...

6.5CVSS7.8AI score0.00837EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/10/11 12:0 a.m.49 views

GLSA-202310-12 : curl: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202310-12 curl: Multiple Vulnerabilities - A vulnerability exists in curl 7.87.0 HSTS check that could be bypassed to trick it to keep using HTTP. Using its HSTS support, curl can be instructed to use HTTPS instead of using an...

9.8CVSS8.3AI score0.78483EPSS
Exploits21References26
Tenable Nessus
Tenable Nessus
added 2023/05/09 12:0 a.m.39 views

EulerOS 2.0 SP10 : curl (EulerOS-SA-2023-1798)

According to the versions of the curl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A vulnerability in input validation exists in curl 8.0 during communication using the TELNET protocol may allow an attacker to pass on maliciously...

9.8CVSS7.3AI score0.02195EPSS
Exploits5References6
OSV
OSV
added 2023/03/31 11:5 a.m.5 views

OESA-2023-1194 curl security update

cURL is a computer software project providing a library libcurl and command-line tool curl for transferring data using various protocols. Security Fixes: libcurl keeps previously used connections in a connection pool for subsequent transfers to reuse if one of them matches the setup. However,...

9.8CVSS8.9AI score0.02195EPSS
Exploits5References6
OSV
OSV
added 2023/03/20 12:0 a.m.2 views

UBUNTU-CVE-2023-27533

A vulnerability in input validation exists in curl 8.0 during communication using the TELNET protocol may allow an attacker to pass on maliciously crafted user name and "telnet options" during server negotiation. The lack of proper input scrubbing allows an attacker to send content or perform...

9.8CVSS7.2AI score0.01993EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2022/03/15 9:32 a.m.5 views

CVE-2022-0982

The telnetinputchar function in opt/src/accel-pppd/cli/telnet.c suffers from a memory corruption vulnerability, whereby user input cmdlinelen is copied into a fixed buffer b-buf without any bound checks. If the server connects with a malicious client, crafted client requests can remotely trigger...

9.8CVSS8.1AI score0.01187EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder